OpenVPN works great, but can I add more security?
At the moment, if someone were to get my key, crt, and ovpn files, they could log into my VPN. Is this standard? Is there a way to add another level of security with pfSense or OpenVPN?
on 2.0 you can also require a username+password to login as well as the certificates. That username and password can come from pfSense, or a defined RADIUS or LDAP server.